overleaf/services/web/app/coffee/Features/UserMembership/UserMembershipController.coffee

AuthenticationController = require('../Authentication/AuthenticationController')
UserMembershipHandler = require('./UserMembershipHandler')
EntityConfigs = require('./UserMembershipEntityConfigs')
Errors = require('../Errors/Errors')
EmailHelper = require("../Helpers/EmailHelper")
logger = require("logger-sharelatex")

module.exports =
	index: (req, res, next)->
		{ entity, entityConfig } = req
		entity.fetchV1Data (error, entity) ->
			return next(error) if error?
			UserMembershipHandler.getUsers entity, entityConfig, (error, users)->
				return next(error) if error?
				entityPrimaryKey = entity[entityConfig.fields.primaryKey].toString()
				entityName = entity[entityConfig.fields.name] if entityConfig.fields.name
				res.render "user_membership/index",
					name: entityName
					users: users
					groupSize: entity.membersLimit if entityConfig.hasMembersLimit
					translations: entityConfig.translations
					paths: entityConfig.pathsFor(entityPrimaryKey)

	add: (req, res, next)->
		{ entity, entityConfig } = req
		email = EmailHelper.parseEmail(req.body.email)
		if !email?
			return res.status(400).json error:
				code: 'invalid_email'
				message: req.i18n.translate('invalid_email')


		if entityConfig.readOnly
			return next(new Errors.NotFoundError("Cannot add users to entity"))

		UserMembershipHandler.addUser entity, entityConfig, email, (error, user)->
			if error?.alreadyAdded
				return res.status(400).json error:
					code: 'user_already_added'
					message: req.i18n.translate('user_already_added')
			if error?.userNotFound
				return res.status(404).json error:
					code: 'user_not_found'
					message: req.i18n.translate('user_not_found')
			return next(error) if error?
			res.json(user: user)

	remove: (req, res, next)->
		{ entity, entityConfig } = req
		userId = req.params.userId

		if entityConfig.readOnly
			return next(new Errors.NotFoundError("Cannot remove users from entity"))

		loggedInUserId = AuthenticationController.getLoggedInUserId(req)
		if loggedInUserId == userId
			return res.status(400).json error:
				code: 'managers_cannot_remove_self'
				message: req.i18n.translate('managers_cannot_remove_self')

		UserMembershipHandler.removeUser entity, entityConfig, userId, (error, user)->
			if error?.isAdmin
				return res.status(400).json error:
					code: 'managers_cannot_remove_admin'
					message: req.i18n.translate('managers_cannot_remove_admin')
			return next(error) if error?
			res.send()

	exportCsv: (req, res, next)->
		{ entity, entityConfig } = req
		logger.log subscriptionId: entity._id, "exporting csv"
		UserMembershipHandler.getUsers entity, entityConfig, (error, users)->
			return next(error) if error?
			csvOutput = ""
			for user in users
				csvOutput += user.email + "\n"
			res.header(
				"Content-Disposition",
				"attachment; filename=Group.csv"
			)
			res.contentType('text/csv')
			res.send(csvOutput)
add UserMembership logic 2018-09-25 09:10:06 -04:00			`AuthenticationController = require('../Authentication/AuthenticationController')`
			`UserMembershipHandler = require('./UserMembershipHandler')`
refactor to use config file 2018-10-11 13:56:14 -04:00			`EntityConfigs = require('./UserMembershipEntityConfigs')`
			`Errors = require('../Errors/Errors')`
Merge pull request #1076 from sharelatex/ta-ui-error-handling Management UI Error Handling GitOrigin-RevId: a0567b5d54af3a8ca31f7e124c0c2d2d8d26b647 2018-10-30 10:17:53 -04:00			`EmailHelper = require("../Helpers/EmailHelper")`
add UserMembership logic 2018-09-25 09:10:06 -04:00			`logger = require("logger-sharelatex")`

			`module.exports =`
Merge pull request #1042 from sharelatex/ta-user-membership-access User Membership Access Refactor GitOrigin-RevId: 23e8d342bc4829450625146213ff92cb042550dd 2018-10-24 09:50:34 -04:00			`index: (req, res, next)->`
			`{ entity, entityConfig } = req`
Merge pull request #1154 from sharelatex/ta-display-institution-name display institution name on managment and metrics pages GitOrigin-RevId: 302bffee358d9d5090877ca833584f50afc0ff7b 2018-11-16 04:02:57 -05:00			`entity.fetchV1Data (error, entity) ->`
add UserMembership logic 2018-09-25 09:10:06 -04:00			`return next(error) if error?`
Merge pull request #1154 from sharelatex/ta-display-institution-name display institution name on managment and metrics pages GitOrigin-RevId: 302bffee358d9d5090877ca833584f50afc0ff7b 2018-11-16 04:02:57 -05:00			`UserMembershipHandler.getUsers entity, entityConfig, (error, users)->`
			`return next(error) if error?`
			`entityPrimaryKey = entity[entityConfig.fields.primaryKey].toString()`
			`entityName = entity[entityConfig.fields.name] if entityConfig.fields.name`
			`res.render "user_membership/index",`
			`name: entityName`
			`users: users`
			`groupSize: entity.membersLimit if entityConfig.hasMembersLimit`
			`translations: entityConfig.translations`
			`paths: entityConfig.pathsFor(entityPrimaryKey)`
Merge pull request #1042 from sharelatex/ta-user-membership-access User Membership Access Refactor GitOrigin-RevId: 23e8d342bc4829450625146213ff92cb042550dd 2018-10-24 09:50:34 -04:00
			`add: (req, res, next)->`
			`{ entity, entityConfig } = req`
Merge pull request #1076 from sharelatex/ta-ui-error-handling Management UI Error Handling GitOrigin-RevId: a0567b5d54af3a8ca31f7e124c0c2d2d8d26b647 2018-10-30 10:17:53 -04:00			`email = EmailHelper.parseEmail(req.body.email)`
			`if !email?`
			`return res.status(400).json error:`
			`code: 'invalid_email'`
			`message: req.i18n.translate('invalid_email')`

add UserMembership logic 2018-09-25 09:10:06 -04:00
Merge pull request #1042 from sharelatex/ta-user-membership-access User Membership Access Refactor GitOrigin-RevId: 23e8d342bc4829450625146213ff92cb042550dd 2018-10-24 09:50:34 -04:00			`if entityConfig.readOnly`
			`return next(new Errors.NotFoundError("Cannot add users to entity"))`
add UserMembership logic 2018-09-25 09:10:06 -04:00
Merge pull request #1042 from sharelatex/ta-user-membership-access User Membership Access Refactor GitOrigin-RevId: 23e8d342bc4829450625146213ff92cb042550dd 2018-10-24 09:50:34 -04:00			`UserMembershipHandler.addUser entity, entityConfig, email, (error, user)->`
Merge pull request #1076 from sharelatex/ta-ui-error-handling Management UI Error Handling GitOrigin-RevId: a0567b5d54af3a8ca31f7e124c0c2d2d8d26b647 2018-10-30 10:17:53 -04:00			`if error?.alreadyAdded`
			`return res.status(400).json error:`
			`code: 'user_already_added'`
			`message: req.i18n.translate('user_already_added')`
			`if error?.userNotFound`
			`return res.status(404).json error:`
			`code: 'user_not_found'`
			`message: req.i18n.translate('user_not_found')`
add UserMembership logic 2018-09-25 09:10:06 -04:00			`return next(error) if error?`
Merge pull request #1042 from sharelatex/ta-user-membership-access User Membership Access Refactor GitOrigin-RevId: 23e8d342bc4829450625146213ff92cb042550dd 2018-10-24 09:50:34 -04:00			`res.json(user: user)`
refactor to use config file 2018-10-11 13:56:14 -04:00
Merge pull request #1042 from sharelatex/ta-user-membership-access User Membership Access Refactor GitOrigin-RevId: 23e8d342bc4829450625146213ff92cb042550dd 2018-10-24 09:50:34 -04:00			`remove: (req, res, next)->`
			`{ entity, entityConfig } = req`
			`userId = req.params.userId`
add UserMembership logic 2018-09-25 09:10:06 -04:00
Merge pull request #1042 from sharelatex/ta-user-membership-access User Membership Access Refactor GitOrigin-RevId: 23e8d342bc4829450625146213ff92cb042550dd 2018-10-24 09:50:34 -04:00			`if entityConfig.readOnly`
			`return next(new Errors.NotFoundError("Cannot remove users from entity"))`
refactor to use config file 2018-10-11 13:56:14 -04:00
Merge pull request #1076 from sharelatex/ta-ui-error-handling Management UI Error Handling GitOrigin-RevId: a0567b5d54af3a8ca31f7e124c0c2d2d8d26b647 2018-10-30 10:17:53 -04:00			`loggedInUserId = AuthenticationController.getLoggedInUserId(req)`
			`if loggedInUserId == userId`
			`return res.status(400).json error:`
			`code: 'managers_cannot_remove_self'`
			`message: req.i18n.translate('managers_cannot_remove_self')`

Merge pull request #1042 from sharelatex/ta-user-membership-access User Membership Access Refactor GitOrigin-RevId: 23e8d342bc4829450625146213ff92cb042550dd 2018-10-24 09:50:34 -04:00			`UserMembershipHandler.removeUser entity, entityConfig, userId, (error, user)->`
Merge pull request #1076 from sharelatex/ta-ui-error-handling Management UI Error Handling GitOrigin-RevId: a0567b5d54af3a8ca31f7e124c0c2d2d8d26b647 2018-10-30 10:17:53 -04:00			`if error?.isAdmin`
			`return res.status(400).json error:`
			`code: 'managers_cannot_remove_admin'`
			`message: req.i18n.translate('managers_cannot_remove_admin')`
Merge pull request #1042 from sharelatex/ta-user-membership-access User Membership Access Refactor GitOrigin-RevId: 23e8d342bc4829450625146213ff92cb042550dd 2018-10-24 09:50:34 -04:00			`return next(error) if error?`
			`res.send()`
Merge pull request #1065 from sharelatex/ta-manage-group-members Manage Group Members GitOrigin-RevId: f0b120630ded1874dfc0352055633afff0015da9 2018-10-25 11:10:02 -04:00
			`exportCsv: (req, res, next)->`
			`{ entity, entityConfig } = req`
			`logger.log subscriptionId: entity._id, "exporting csv"`
			`UserMembershipHandler.getUsers entity, entityConfig, (error, users)->`
			`return next(error) if error?`
			`csvOutput = ""`
			`for user in users`
			`csvOutput += user.email + "\n"`
			`res.header(`
			`"Content-Disposition",`
			`"attachment; filename=Group.csv"`
			`)`
			`res.contentType('text/csv')`
			`res.send(csvOutput)`